No Name Online

The Internet serves as an incredible tool for educators and students to communicate, research information, and learn. The widespread availability of computers and connections to the Internet provides everyone around-the-clock access to information, credit and financial services, and shopping.

Unfortunately, there exist individuals who exploit the Internet through their criminal activities and other harmful acts. Cybercriminals use creative measures to gain unauthorized access to your computer and then use that access to steal your identity, commit fraud, or even launch cyber attacks against others.

Staying safe online is no longer a given, but a necessary extracurricular activity. Here are nine security measures you can employ immediate to protect yourself, your family, and your business. By following the recommended cyber security measures outlined here, you can limit the harm cyber criminals can do not only to your computer, but to everyone’s computer. However, keep in mind that there is no single cyber security measure or technological solution that will prevent their cybercrime. These recommended cyber security measures highlight that using a set of common-sense precautions that include Internet habits as well as technology solutions can make a difference.

The National Cyber Security Alliance recommends eight measures. To that, I have added an additional. They are practical steps, in no particular order, you can take to stay safe online and avoid becoming a victim of fraud, identity theft, or cyber crime.

1. Protect your children online. Implement parental control tools that are provided by some Internet Service Provider (ISPs) and available for purchase as separate software packages. Remember: No program is a substitute for parental supervision. Also check your browser to see if it would allow you to set some parental controls. (Internet Explorer allows you to restrict or allow certain web sites to be viewed on your computer, and you can protect these settings with a password. To find those options, click Tools on your menu bar, select Internet Options, choose the Content tab, and click the Enable button under Content Advisor.)

2. Back up important files regularly. No system is completely secure. If you have important files stored on your computer, copy them onto a removable disc, and store them in a secure place in a different building than your computer. If a different location isn’t practical, consider encryption software. Encryption software scrambles a message or a file in a way that can be reversed only with a specific password. Also, make sure you keep your original software start-up disks handy and accessible for use in the event of a system crash.

3. Protect your valuable personal and financial information. Don’t open unsolicited or unknown email messages. If you do get an email or pop-up message asking for personal information, don’t reply or click on the link in the message. To avoid opening such messages, you can turn off the “Preview Pane” functionality in email programs, and you can set your default options to view opened emails as plain text to avoid active links or pop-ups in the messages. Most importantly, do not respond to solicitations for your personal or financial information.

If you believe there may be a need for such information by a company with whom you have an account or placed an order, contact that company directly in a way you know to be genuine. Never send your personal information via email because email is not a secure transmission method.

4. Use strong passwords or strong authentication technology to help protect your personal information. To further increase the security of your online identity and to help protect you from account hi-jacking, take advantage of stronger authentication tools wherever available. This may take the form of two-factor authentication – the combination of a password or PIN number (something you know) with a token, smart card, or even a biometric device (something you have).

Stronger authentication can also come from a behind-the-scenes identity-verification process, which uses various data to establish whether or not a user is genuine. Ask your bank, your regular online retailers, and your Internet Service Provider (ISP) if they offer stronger authentication tools for more secure transactions.

5. Know who you’re dealing with online. Every day, millions of computer users share files online, either as email, documents, or photos. File-sharing can give people access to a wealth of information, including music, games, and software. You download special software that connects your computer to an informal network of other computers running the same software. Millions of users could be connected to each other through this software at one time. Often the software is free and easily accessible, but file-sharing can have a number of risks.

(a) If you don’t check the proper settings, you could allow access not just to the files you intend to share, but also to other information on your hard drive, like your tax returns, email messages, medical records, photos, or other personal documents.

(b)In addition, you may unwittingly download pornography labeled as something else. Or you may download material that is protected by the copyright laws, which would mean you could be breaking the law.

Therefore, downloading file-sharing software is not advisable and could place your personal information and computer at risk. If you do decide to use file-sharing software, set it up very carefully. Take the time to read the End User License Agreement to be sure that you’re sharing files legally and that you understand the potentially high risk of any free downloads. For example, some license agreements include an agreement to allow spyware to be installed on your machine.

Although the Internet basically provides a positive and productive experience, cyber-attacks against our personal privacy and security are reaching epidemic proportions. These attacks are occurring in our own homes and businesses. Our own computers are being used are being used as zombies to attack other people, businesses, and even our nation itself. As an average Internet user, you may not be aware of these threats nor have any idea about the dramatically increasing risks you face when connected to the Internet.

On a campaign for internet safety awareness and protection, my mission is to bring critical awareness to individuals, families, and small business owners, and to provide access to the necessary tools and ongoing expertise to secure your computer and help you stay protected.

I invite you to join the many thousands of others who have tested their computers, discovered these threats are real, and taken the necessary steps to protect themselves.

Now that you have become aware of these issues, I encourage you to share this vital information with your families, friends and communities. Together, we can reach many millions of people and inform them about the threats to their privacy and security, and help them get the protection they desperately need.

Remember: When you say “No!” to hackers and spyware, everyone wins! When you don’t, we all lose!© MMVII, Etienne A. Gibbs, MSW, Internet Safety Advocate and Educator

Basics of security and protecting yourself online

Internet security, identity theft and fraud have become major issues recently as more people globally obtain access to the Internet. With the decrease in barriers to entry, i.e. lower webhosting costs, widespread highspeed and wireless Internet access, and website contruction software that truly enables anyone to create a website, the online players and number of new websites are increasing exponentially. With this increase comes a flood of new websites from countries around the world with various languages and business and regulatory environments. The question for the Internet user becomes, which of these websites can be trusted when making online purchases and revealing personal information to an unknown party?

Online fraud in auctions, advance fee fraud and romance scams, lottery and phishing emails, credit card and identity theft totalled well over $2B USD in 2006. The number is expected to increase in 2007 despite efforts to curb the trend. Criminals carry out the operations from countries all over the world, but many work from Internet cafes in corrupt countries like Nigeria, South Africa and Ghana. The truth is, however, nearly all countries in the world have criminals involved in this new crime. It is estimated that over 60% of all Internet users express privacy and trust concerns when shopping or providing personal information over the web, or over 1 billion people worldwide. How can you protect yourself from this growing crime? We provide some safety tips.

Search the Web for reviews, posts and information.

By searching Google and Yahoo for the company or website name, chances are excellent you can find reviews or at least comments from other users and customers. If not, try searching the Rip Off Report to see if the company has had a history of complaints. Sill no information? Try using Yahoo Answers to ask if anyone has any information on the site. If after these attempts little or no information is known about the site, chances are the website is new or a very small operation. In other words, the risk is higher as the company or website has yet to establish its brand and online reputation. Next, a look at the actual site.

Look for privacy policies and privacy associations.

The first step when judging an unknown website should be viewing its privacy policy. If the site has no privacy policy, consider it a questionable operation and move on. Reading the entire privacy policy and legal verbage isn’t necessay, but do scan the document to see if the site or company appears to take privacy matters seriously. Truste is a non-profit group which offers its website seal to those sites which comply with their strict standards. If the website in question has this seal, chances are the website and or company takes the matter seriously with adequate steps to inform site visitors and protect your private information.

Check for security seals on the site like Hacker Safe.

If a website has a major security seal such as ScanAlert’s Hacker Safe seal, visitors to that site know that the company or website has taken steps to protect users and customers from credit card fraud and identity theft. Although there are no guarantees, there is no comparison between a site with such a security seal and one without this safeguard. The Hacker Safe seal indicates the site is scanned daily to ensure the site meets strict security standards of secure website design and server applications.

Demand site encryption for personal information.

To protect personal information trasmission, such as credit card payments or home telephone and address data, a well designed and safe Internet website should have SSL (Secure Socket Layer) encryption of at least 128 bit. What does this mean? This indicates the website uses technology which ecrypts your personal data when being trasmitted from the website to its servers, and is therefore extremely difficult to intercept or steal. A major company offering this service is VeriSign and having the seal indicates that the site, or portions of the site are encrypted. There are many competitors, however, and as long as the yellow lock shows on the bottom right hand side of the browser, visitors to a website know that such a site page is being encrypted.

A website example of how it all looks and works.

Wymoo International makes a good case presentation of how all these elements come together to protect website visitors and customers. These same principles that a website is properly designed and maintained, however, can and should be applied to other websites when the choice is being made to do business via a website, or even to supply basic personal information. From viewing Wymoo’s home page, we see on the bottom left hand corner the Hacker Safe and Truste seals. By clicking on either seal, visitors and potential customers can verify that the site is in current compliance with each online security group. On Wymoo’s Free Quote page, visitors again see the Hacker Safe and Truste seals, but on the bottom right of the browser, there is the yellow lock indicating the page is encrypted. Also on the page are links to the privacy and data security policy. This is a good example of what to look for in quality e-commerce websites.

Lastly, there is no way to ensure 100% safety while shopping or providing personal information on the Internet. There are many steps you can take to judge whether or not the website is legitimate and offers protection from identity theft and credit card fraud. Research the company or website reputation on Yahoo and Google. Look for security and privacy seals such as HackerSafe and Truste. Check for website encryption (the yellow lock) on pages where you submit your private information. Lastly, make payments with a major credit card. In the event of fraud, your credit card company may reverse the charge.

Play it safe,

A. Hathaway

Copyright © 2005-2007 A. Hathaway

• Author: Tim Mather
• Author: Subra Kumaraswamy
• Author: Shahed Latif
• Binding: Paperback
• EAN: 9780596802769
• Edition: 1
• ISBN: 0596802765
• ItemDimensions:
• Label: O’Reilly Media
• Languages:
• ListPrice:
• Manufacturer: O’Reilly Media
• NumberOfItems: 1
• NumberOfPages: 336
• PackageDimensions:
• ProductGroup: Book
• ProductTypeName: ABIS_BOOK
• PublicationDate: 2009-10-05
• Publisher: O’Reilly Media
• SKU: 7693461
• Studio: O’Reilly Media
• Title: Cloud Security and Privacy: An Enterprise Perspective on Risks and Compliance (Theory in Practice)